Vulnerability Details CVE-2024-5800
Diffie-Hellman groups with insufficient strength are used in the SSL/TLS stack of B&R Automation Runtime versions before 6.0.2, allowing a network attacker to decrypt the SSL/TLS communication.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.1%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2024-5800
-
cpe:2.3:a:br-automation:automation_runtime:2.96
-
cpe:2.3:a:br-automation:automation_runtime:3.00
-
cpe:2.3:a:br-automation:automation_runtime:3.01
-
cpe:2.3:a:br-automation:automation_runtime:3.06
-
cpe:2.3:a:br-automation:automation_runtime:3.07
-
cpe:2.3:a:br-automation:automation_runtime:3.08
-
cpe:2.3:a:br-automation:automation_runtime:3.10
-
cpe:2.3:a:br-automation:automation_runtime:4.00
-
cpe:2.3:a:br-automation:automation_runtime:4.03
-
cpe:2.3:a:br-automation:automation_runtime:4.04
-
cpe:2.3:a:br-automation:automation_runtime:4.10
-
cpe:2.3:a:br-automation:automation_runtime:4.20
-
cpe:2.3:a:br-automation:automation_runtime:4.30
-
cpe:2.3:a:br-automation:automation_runtime:4.40
-
cpe:2.3:a:br-automation:automation_runtime:4.50
-
cpe:2.3:a:br-automation:automation_runtime:4.60
-
cpe:2.3:a:br-automation:automation_runtime:4.63
-
cpe:2.3:a:br-automation:automation_runtime:4.70
-
cpe:2.3:a:br-automation:automation_runtime:4.72